CVE-2009-4355

Memory leak in the zlibstatefulfinish function in crypto/comp/czlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service memory consumption via vectors that trigger incorrect calls to the CRYPTOcleanupallexdata function, as demonstrate...

CVE-2009-4355

Memory leak in the zlibstatefulfinish function in crypto/comp/czlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service memory consumption via vectors that trigger incorrect calls to the CRYPTOcleanupallexdata function, as demonstrate...

CVE-2009-4355

Memory leak in the zlibstatefulfinish function in crypto/comp/czlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service memory consumption via vectors that trigger incorrect calls to the CRYPTOcleanupallexdata function, as demonstrate...

Moderate: Red Hat Security Advisory: httpd and httpd22 security update

Updated httpd and httpd22 packages that fix multiple security issues are now available for JBoss Enterprise Web Server 1.0.0 for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popul...

Fedora Core 12 FEDORA-2009-12606 (httpd)

The remote host is missing an update to Apache HTTP Server announced via advisory FEDORA-2009-12606. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

Mandriva Security Advisory MDVSA-2009:189-1 (apache-mod_auth_mysql)

The remote host is missing an update to apache-modauthmysql announced via advisory MDVSA-2009:189-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

apache mod-ssl 2.0.50 Denial-of-Service 拒绝服务漏洞

No description provided by source...

[SECURITY] Fedora 12 Update: httpd-2.2.14-1.fc12

The Apache HTTP Server is a powerful, efficient, and extensible web server...

Mandriva Security Advisory MDVSA-2009:091-1 (mod_perl)

The remote host is missing an update to modperl announced via advisory MDVSA-2009:091-1. OpenVAS Vulnerability Test $Id: mdksa20090911.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:091-1 modperl Authors: Thomas Reinke Copyright: Copyright c 2009...

Fedora Core 10 FEDORA-2009-12604 (httpd)

The remote host is missing an update to httpd announced via advisory FEDORA-2009-12604. OpenVAS Vulnerability Test $Id: fcore200912604.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-12604 httpd Authors: Thomas Reinke Copyright: Copyright c 2009...

Apache 2.0.x Input Header Folding Denial of Service (CVE-2004-0493)

Apache HTTP server can accept an HTTP request that contains multiple header fields. A vulnerability exists in the Apache HTTP Server 2.0. The vulnerable software contains a bug that can be exploited while receiving an HTTP request with arbitrary long MIME header lines from a malicious attacker...

Low: Red Hat Security Advisory: mod_jk security update for Red Hat Network Satellite Server

An updated modjk package that fixes one security issue is now available for Red Hat Network Satellite Server 5.1 and 5.2. This update has been rated as having low security impact by the Red Hat Security Response Team. modjk is an Apache Tomcat connector that allows Apache Tomcat and the Apache HT...

Novell iManager Tomcat HTTP POST Request Handling Denial of Service (CVE-2006-4517)

Novell iManager is a web-based administration console that provides management of many other Novell products. During installation, if the Windows Web Publishing Services IIS is not available, the installation program will install the Apache HTTP server. The iManager service itself is a Java web...

VulnCheck KEV: CVE-2009-3555

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services IIS 7.0, modssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services NSS 3.12.4 and earlier,...

Unrestricted file upload

Unrestricted file upload vulnerability in the wpcheckfiletype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the modmime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an...

CVE-2009-3890

Unrestricted file upload vulnerability in the wpcheckfiletype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the modmime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an...

CVE-2009-3890

Unrestricted file upload vulnerability in the wpcheckfiletype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the modmime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an...

CVE-2009-3890

WordPress before 2.8.6 has an Unrestricted file upload vulnerability in wp_check_filetype, exploitable when mod_mime is configured in Apache. Remote authenticated users can upload an attachment with a multiple-extension filename (e.g., name.php.jpg) and then access it via wp-content/uploads/ to e...

CVE-2009-3890

Unrestricted file upload vulnerability in the wpcheckfiletype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the modmime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an...

EUVD-2009-3861

Unrestricted file upload vulnerability in the wpcheckfiletype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the modmime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an...